Chief Information Security Officer (10-14 yrs)

Job Description :

Key Responsibilities :

- Develop and implement a comprehensive information security strategy aligned with business objectives and industry best practices.

- Lead and manage the information security team, including hiring, training, and performance management.

- Conduct risk assessments and identify, evaluate, and prioritize security threats and vulnerabilities.

- Develop and implement security policies, standards, and procedures, including access control, data protection, and incident response.

- Oversee the implementation and maintenance of security controls, such as firewalls, intrusion detection systems, and encryption.

- Manage security incidents effectively and efficiently, including investigation, containment, eradication, and recovery.

- Ensure compliance with relevant security regulations and industry standards (GDPR, ISO 27001, SOC 2).

- Collaborate with business leaders to integrate security considerations into all aspects of the business.

- Stay abreast of the latest cybersecurity threats, vulnerabilities, and best practices.

- Build and maintain strong relationships with key stakeholders (legal, compliance, IT).

- Communicate security risks and mitigation strategies effectively to senior management and the board of directors.

Qualifications :

- Proven professional and technical experience with 10-14 years of industry experience in information security.

- Deep understanding of cybersecurity concepts and best practices, including threat intelligence, vulnerability management, incident response, and data protection.

- Strong leadership, communication, and interpersonal skills with the ability to influence and build consensus.

- Excellent analytical and problem-solving skills with the ability to identify and mitigate complex security risks.

- Strong understanding of relevant security standards and regulations (e., GDPR, ISO 27001, SOC 2).

- Experience with security technologies such as firewalls, intrusion detection systems, SIEM, and encryption.

- Experience managing security teams and budgets.

- Relevant certifications (CISSP, CISM, CISA) are highly preferred.

Desired Skills & Experience :

- Experience in a fast-paced and dynamic environment.

- Experience with cloud security (AWS, Azure, GCP).

- Experience with security automation and orchestration tools.

- Experience with security awareness training and education programs